Changes by Terry J. Reedy tjre...@udel.edu:
--
resolution: - out of date
status: open - closed
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue8678
___
Tomas Hoger tho...@redhat.com added the comment:
You seem to be right that r65878 should block the xsize = ysize = 0x8000
integer overflow. I was testing on the python version with r60793, but not
with r65878. Note that the check added in r65878 should still cause crash on
divide-by-zero
Changes by Brett Cannon br...@python.org:
--
nosy: -brett.cannon
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue8678
___
___
Python-bugs-list
Changes by Arfrever Frehtes Taifersar Arahesis arfrever@gmail.com:
--
nosy: +Arfrever
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue8678
___
STINNER Victor victor.stin...@haypocalc.com added the comment:
I am able to reproduce the crash with z 4:
# (magic, type (rle, bpp), dim, x, y, z)
open('image', 'wb').write(struct.pack('hh', 0732, 1, 1, 1, 1, 10))
rgbimg.longimagedata('image')
--
But not the xsize = ysize = 0x8000
Martin v. Löwis mar...@v.loewis.de added the comment:
haypo: what's the relationship?
--
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue8678
___
STINNER Victor victor.stin...@haypocalc.com added the comment:
See also #7673 (other crashers).
--
nosy: +haypo
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue8678
___
Brett Cannon br...@python.org added the comment:
Because it's a crasher it could still be patched if someone chose to do the
work.
--
components: +Extension Modules
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue8678
Tomas Hoger tho...@redhat.com added the comment:
According to PEP-0004, affected module was deprecated in 2.5 and is no longer
part of 2.6 and later. Hence 2.5 only, not sure if that version is still
actively supported upstream.
--
nosy: +thoger
versions: -Python 2.6, Python 2.7
New submission from Brett Cannon br...@python.org:
Red Hat found some crashers in the rgbimg module along with a proposed patch:
https://bugzilla.redhat.com/show_bug.cgi?id=541698 . Since the patch was sent
to the PSRT privately before the bugs were announced, it should be fine to take
the
Martin v. Löwis mar...@v.loewis.de added the comment:
As a security fix, it probably applies to 2.5 and 2.6 as well.
--
nosy: +loewis
versions: +Python 2.5, Python 2.6
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue8678
11 matches
Mail list logo